Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194391 2.1 注意 Puppet - Puppet および Puppet Enterprise における重要な設定情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3866 2012-09-14 16:29 2012-08-6 Show GitHub Exploit DB Packet Storm
194392 5 警告 SGI - Performance Co-Pilot におけるサービス運用妨害 (pmcd ハング) の脆弱性 CWE-DesignError
CVE-2012-3421 2012-09-14 16:29 2012-08-16 Show GitHub Exploit DB Packet Storm
194393 5 警告 SGI - Performance Co-Pilot におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-3420 2012-09-14 16:27 2012-08-16 Show GitHub Exploit DB Packet Storm
194394 5 警告 SGI - Performance Co-Pilot における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-3419 2012-09-14 16:26 2012-08-16 Show GitHub Exploit DB Packet Storm
194395 5 警告 SGI - Performance Co-Pilot の libpcp におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2012-3418 2012-09-14 16:25 2012-08-16 Show GitHub Exploit DB Packet Storm
194396 4.3 警告 Puppet - Puppet および Puppet Enterprise における巧妙に細工されたエージェント証明書に署名させられる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3867 2012-09-14 16:03 2012-08-6 Show GitHub Exploit DB Packet Storm
194397 3.5 注意 Puppet - Puppet および Puppet Enterprise におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-3865 2012-09-14 16:01 2012-08-6 Show GitHub Exploit DB Packet Storm
194398 4 警告 Puppet - Puppet および Puppet Enterprise における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-3864 2012-09-14 15:56 2012-08-6 Show GitHub Exploit DB Packet Storm
194399 4.3 警告 マイクロソフト - Microsoft Systems Management Server および System Center Configuration Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2536 2012-09-14 15:52 2012-09-11 Show GitHub Exploit DB Packet Storm
194400 4.3 警告 マイクロソフト - Microsoft Visual Studio Team Foundation Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1892 2012-09-14 15:51 2012-09-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1221 - - - Use of implicit intent for sensitive communication in EasySetup prior to version 11.1.18 allows local attackers to access sensitive information. - CVE-2025-20896 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1222 - - - Authentication Bypass Using an Alternate Path in Galaxy Store prior to version 4.5.87.6 allows physical attackers to install arbitrary applications to bypass restrictions of Setupwizard. - CVE-2025-20895 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1223 - - - Improper access control in Samsung Email prior to version 6.1.97.1 allows physical attackers to access data across multiple user profiles. - CVE-2025-20894 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1224 4.3 MEDIUM
Network 		- - The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.9.5 via the 'bsb-slider' shortcode due to insufficient r… CWE-284
Improper Access Control 		CVE-2024-13514 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1225 4.3 MEDIUM
Network 		- - The Medical Addon for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.6.2 via the 'namedical_elementor_template' shortcode due… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-12046 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1226 - - - A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6 . An attacker with administrator privileges can upload a specially crafted image, which can cause a sta… - CVE-2024-10239 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1227 - - - A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6. An attacker can upload a specially crafted image that will cause a stack overflow is caused by not … - CVE-2024-10238 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1228 - - - There is a vulnerability in the BMC firmware image authentication design at Supermicro MBD-X12DPG-OA6 . An attacker can modify the firmware to bypass BMC inspection and bypass the signature verif… - CVE-2024-10237 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1229 4.3 MEDIUM
Network 		- - The JS Help Desk – The Ultimate Help Desk & Support Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.8.8 via the 'exportusereraser… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-13607 2025-02-4 16:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1230 - - - The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak sensei_email and sensei_message Information. - CVE-2025-0466 2025-02-4 15:15 2025-02-4 Show GitHub Exploit DB Packet Storm